Vulnerabilidades em IBM

4.716 resultados

CVE-2022-47986CRITICALIBM Aspera Faspex code executionEPSS 100.0%KEV CVE-2019-4716CRITICALIBM Planning Analytics 2.0.0 through 2.0.8 is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "adminEPSS 86.4%KEV CVE-2019-4279CRITICALIBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted EPSS 80.4%CVE-2024-22319HIGHIBM Operational Decision Manager JDNI injectionEPSS 76.4%CVE-2020-4280MEDIUMIBM QRadar SIEM 7.3 and 7.4 could allow a remote attacker to execute arbitrary commands on the system, caused by insecure deserialization ofEPSS 73.5%CVE-2024-22320CRITICALIBM Operational Decision Manager code executionEPSS 73.4%CVE-2020-4429CRITICALIBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 contains a default password for an IDRM administrative account. A remote EPSS 71.4%CVE-2020-4211CRITICALIBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system. By using a specially crafEPSS 71.1%CVE-2020-4427CRITICALIBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 could allow a remote attacker to bypass security restrictions when configEPSS 70.0%KEV CVE-2020-4430MEDIUMIBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to traverse directories on the system. An aEPSS 68.5%KEV CVE-2020-4241HIGHIBM Spectrum Scale and IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote authenticated attacker to execute arbitrary commEPSS 66.3%CVE-2020-4888MEDIUMIBM QRadar SIEM 7.4.0 to 7.4.2 Patch 1 and 7.3.0 to 7.3.3 Patch 7 could allow a remote attacker to execute arbitrary commands on the system,EPSS 62.0%CVE-2020-4428CRITICALIBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to execute arbitrary commands on the systemEPSS 61.7%KEV CVE-2018-1612MEDIUMIBM QRadar Incident Forensics (IBM QRadar SIEM 7.2, and 7.3) could allow a remote attacker to bypass authentication and obtain sensitive infEPSS 57.0%CVE-2018-1418—IBM Security QRadar SIEM 7.2 and 7.3 could allow a user to bypass authentication which could lead to code execution. IBM X-Force ID: 138824.EPSS 53.4%CVE-2020-4450CRITICALIBM WebSphere Application Server 8.5 and 9.0 traditional could allow a remote attacker to execute arbitrary code on the system with a speciaEPSS 33.9%CVE-2020-4463HIGHIBM Maximo Asset Management 7.6.0.1 and 7.6.0.2 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A rEPSS 31.6%CVE-2017-1129—IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it could cause the Notes clEPSS 30.1%CVE-2017-1130—IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it would open up many file EPSS 29.2%CVE-2019-4061MEDIUMIBM BigFix Platform 9.2 and 9.5 could allow an attacker to query the relay remotely and gather information about the updates and fixlets depEPSS 22.5%

← anteriorpágina 1 / 236próxima →